Main Vulnerability Database Exploits ID:3696 - Exploit for Information disclosure - CVE-2017-2363

ID:3696 - Exploit for Information disclosure - CVE-2017-2363

Published: August 4, 2020

Vulnerability identifier: #VU33475

Vulnerability risk: Medium

CVE-ID: CVE-2017-2363

CWE-ID: CWE-200

Exploitation vector: Remote access

Vulnerable software:

Link to public exploit:

https://www.exploit-db.com/exploits/41449/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to gain access to sensitive information.

An issue was discovered in certain Apple products. iOS before 10.2.1 is affected. Safari before 10.0.3 is affected. tvOS before 10.1.1 is affected. watchOS before 3.1.3 is affected. The issue involves the "WebKit" component. It allows remote attackers to bypass the Same Origin Policy and obtain sensitive information via a crafted web site.

Remediation

Install update from vendor's website.

ID:3696 - Exploit for Information disclosure - CVE-2017-2363

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human